[Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2025-9288

Salvatore Bonaccorso (@carnil) Thu, 21 Aug 2025 11:54:58 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
51ecf6d8 by Salvatore Bonaccorso at 2025-08-21T20:54:18+02:00
Reference upstream commit for CVE-2025-9288

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,6 +7,7 @@ CVE-2025-9288 (Improper Input Validation vulnerability in 
sha.js allows Input Da
        - node-sha.js <unfixed>
        NOTE: 
https://github.com/browserify/sha.js/security/advisories/GHSA-95m3-7q98-8xr5
        NOTE: https://github.com/browserify/sha.js/pull/78
+       NOTE: Fixed by: 
https://github.com/browserify/sha.js/commit/f2a258e9f2d0fcd113bfbaa49706e1ac0d979ba5
 (v2.4.12)
 CVE-2025-9287 (Improper Input Validation vulnerability in cipher-base allows 
Input Da ...)
        - node-cipher-base <unfixed>
        NOTE: 
https://github.com/browserify/cipher-base/security/advisories/GHSA-cpq7-6gpm-g9rc



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/51ecf6d83810c3ca684e5aba0d0a4a31460c3ca0

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/51ecf6d83810c3ca684e5aba0d0a4a31460c3ca0
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2025-9288

Reply via email to